X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=sales%2Finquiry%2Fsales_deliveries_view.php;h=72e6d132da71930d9f5e84a1a0bdb40aa0d3d9c2;hb=8ea6c4dd0d9b31b3456d012b0c94339b801bee0c;hp=36eaf06318c6658d14b3d56ad7c82e4eabeacb9e;hpb=e8ae3516539a520338117f25d401c0fc234973a4;p=fa-stable.git diff --git a/sales/inquiry/sales_deliveries_view.php b/sales/inquiry/sales_deliveries_view.php index 36eaf063..72e6d132 100644 --- a/sales/inquiry/sales_deliveries_view.php +++ b/sales/inquiry/sales_deliveries_view.php @@ -9,8 +9,8 @@ MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the License here . ***********************************************************************/ -$page_security = 2; -$path_to_root="../.."; +$page_security = 'SA_SALESINVOICE'; +$path_to_root = "../.."; include($path_to_root . "/includes/db_pager.inc"); include($path_to_root . "/includes/session.inc"); @@ -108,7 +108,7 @@ locations_list_cells(_("Location:"), 'StockLocation', null, true); stock_items_list_cells(_("Item:"), 'SelectStockFromList', null, true); -submit_cells('SearchOrders', _("Search"),'',_('Select documents'), true); +submit_cells('SearchOrders', _("Search"),'',_('Select documents'), 'default'); hidden('OutstandingOnly', $_POST['OutstandingOnly']); @@ -119,7 +119,7 @@ end_form(); //--------------------------------------------------------------------------------------------- if (isset($_POST['SelectStockFromList']) && ($_POST['SelectStockFromList'] != "") && - ($_POST['SelectStockFromList'] != reserved_words::get_all())) + ($_POST['SelectStockFromList'] != ALL_TEXT)) { $selected_stock_item = $_POST['SelectStockFromList']; } @@ -131,7 +131,7 @@ else //--------------------------------------------------------------------------------------------- function trans_view($trans, $trans_no) { - return get_customer_trans_view_str(13, $trans['trans_no']); + return get_customer_trans_view_str(ST_CUSTDELIVERY, $trans['trans_no']); } function batch_checkbox($row) @@ -153,7 +153,7 @@ function edit_link($row) function prt_link($row) { - return print_document_link($row['trans_no'], _("Print"), true, 13, ICON_PRINT); + return print_document_link($row['trans_no'], _("Print"), true, ST_CUSTDELIVERY, ICON_PRINT); } function invoice_link($row) @@ -191,7 +191,7 @@ $sql = "SELECT trans.trans_no, WHERE sorder.order_no = trans.order_ AND trans.debtor_no = debtor.debtor_no - AND trans.type = 13 + AND trans.type = ".ST_CUSTDELIVERY." AND line.debtor_trans_no = trans.trans_no AND line.debtor_trans_type = trans.type AND trans.branch_code = branch.branch_code @@ -204,7 +204,8 @@ if ($_POST['OutstandingOnly'] == true) { //figure out the sql required from the inputs available if (isset($_POST['DeliveryNumber']) && $_POST['DeliveryNumber'] != "") { - $sql .= " AND trans.trans_no LIKE '%". $_POST['DeliveryNumber'] ."'"; + $delivery = "%".$_POST['DeliveryNumber']; + $sql .= " AND trans.trans_no LIKE ".db_escape($delivery); $sql .= " GROUP BY trans.trans_no"; } else @@ -213,13 +214,13 @@ else $sql .= " AND trans.tran_date <= '".date2sql($_POST['DeliveryToDate'])."'"; if ($selected_customer != -1) - $sql .= " AND trans.debtor_no='" . $selected_customer . "' "; + $sql .= " AND trans.debtor_no=".db_escape($selected_customer)." "; if (isset($selected_stock_item)) - $sql .= " AND line.stock_id='". $selected_stock_item ."' "; + $sql .= " AND line.stock_id=".db_escape($selected_stock_item)." "; - if (isset($_POST['StockLocation']) && $_POST['StockLocation'] != reserved_words::get_all()) - $sql .= " AND sorder.from_stk_loc = '". $_POST['StockLocation'] . "' "; + if (isset($_POST['StockLocation']) && $_POST['StockLocation'] != ALL_TEXT) + $sql .= " AND sorder.from_stk_loc = ".db_escape($_POST['StockLocation'])." "; $sql .= " GROUP BY trans.trans_no "; @@ -255,10 +256,6 @@ if (isset($_SESSION['Batch'])) $table =& new_db_pager('deliveries_tbl', $sql, $cols); $table->set_marker('check_overdue', _("Marked items are overdue.")); -if (get_post('SearchOrders')) { - $table->set_sql($sql); - $table->set_columns($cols); -} //$table->width = "92%"; start_form();